Previous work: T297830: Tracking bug for MediaWiki 1.35.6/1.36.4/1.37.2
Tracking bug for next security release, 1.35.7/1.37.3/1.38.2
Previous work: T297830: Tracking bug for MediaWiki 1.35.6/1.36.4/1.37.2
Tracking bug for next security release, 1.35.7/1.37.3/1.38.2
Status | Subtype | Assigned | Task | ||
---|---|---|---|---|---|
Resolved | Reedy | T305199 Release MediaWiki 1.35.7/1.37.3/1.38.2 | |||
Resolved | Reedy | T305200 Tracking bug for MediaWiki 1.35.7/1.37.3/1.38.2 | |||
Resolved | Security | Osnard | T309377 CVE-2022-29248: Update "guzzlehttp/guzzle" to version 6.5.6 | ||
Resolved | Security | sbassett | T308471 CVE-2022-34911: Username is not escaped in the "welcomeuser" message | ||
Resolved | Security | sbassett | T308473 CVE-2022-34912: Username not escaped in the contributions-title message | ||
Resolved | BUG REPORT | Reedy | T311384 CVE-2022-31042/CVE-2022-31043/CVE-2022-31090/CVE-2022-31091: Update "guzzlehttp/guzzle" to 6.5.8/7.4.5 | ||
Resolved | Reedy | T311387 Loosen guzzle requirement in MW 1.37 |